filister@lemmy.world to

General Discussion@lemmy.world · 1 year ago

Lemmy.world is exposing the NGINX version

175

Lemmy.world is exposing the NGINX version

filister@lemmy.world to

General Discussion@lemmy.world · 1 year ago

I am not sure if this is the right sub, but yesterday I was having some issues with login with my user and was getting 403 error if I am not wrong and noticed that the NGINX version is exposed, which is a bad practice.

So if someone from the admins of Lemmy.world see this message, maybe they can change the NGINX config and hide the version flag by setting “server_tokens off;”.

Chat

Refurbished Refurbisher@lemmy.sdf.org
link
fedilink
arrow-up
20
arrow-down
2·
1 year ago
Yeah, this post is giving me “security through obscurity” vibes.
- Midas@ymmel.nl
  link
  fedilink
  arrow-up
  10·
  1 year ago
  Obscuring version numbers is best practice. Trying exploits isn’t always trivial and by knowing the exact version number of the software it can be made a whole lot easier. Good post by OP though I do think it should’ve been a DM to Ruud.

General Discussion@lemmy.world

general@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !general@lemmy.world

Welcome to Lemmy.World General!

This is a community for general discussion where you can get your bearings in the fediverse. Discuss topics & ask questions that don’t seem to fit in any other community, or don’t have an active community yet.

🪆 About Lemmy World

🧭 Finding Communities

Feel free to ask here or over in: !lemmy411@lemmy.ca!

Also keep an eye on:

For more involved tools to find communities to join: check out Lemmyverse and Feddit Lemmy Community Browser!

💬 Additional Discussion Focused Communities:

!actual_discussion@lemmy.ca - Note this is for more serious discussions.
!casualconversation@lemm.ee - The opposite of the above, for more laidback chat!
!letstalkaboutgames@feddit.uk - Into video games? Here’s a place to discuss them!
!movies@lemm.ee - Watched a movie and wanna talk to others about it? Here’s a place to do so!

Rules

Remember, Lemmy World rules also apply here.

See: Rules for Users.
No bigotry: including racism, sexism, homophobia, transphobia, or xenophobia.
Be respectful. Everyone should feel welcome here.
Be thoughtful and helpful: even with ‘silly’ questions. The world won’t be made better by dismissive comments to others on Lemmy.
Link posts should include some context/opinion in the body text when the title is unaltered, or be titled to encourage discussion.
Posts concerning other instances’ activity/decisions are better suited to !fediverse@lemmy.world or !lemmydrama@lemmy.world communities.
No Ads/Spamming.
No NSFW content.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

3 users / day
521 users / week
1.21K users / month
6.34K users / 6 months
1 local subscriber
11.8K subscribers
445 Posts
8.23K Comments
Modlog